package cn.tedu._08security.controller;

import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

@RestController
@RequestMapping("/api/")
@EnableGlobalMethodSecurity(prePostEnabled = true)
public class Usercontroller {
    @GetMapping("public/hello")
    public String hello(){
        return "public!!!";
    }
    @PreAuthorize("hasAuthority('sys:private:view')")
    @GetMapping("private/hello")
    public String privateHello(){
        return "private!!!";
    }

}
